MAL-2025-189925 Malicious code in throw-bad-orchestrate-analyze-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7886aafdc1134f17a171cbf56c87c0a322e52665e05ce9712e28c73e51ac95a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185543 Malicious code in arcturus-fornax-thuban-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7009c927b5e00df689b7d6fb41e960faddd6fa557d4deb76f787a5556c51e1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187725 Malicious code in lambda-daemon-cron-delta-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189849 Malicious code in tectonophysics-pegasus-neuromorphic-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5260fad6a008f7b1ade8ed6226e0a569863730d3a911516ecc1888f7d5740747 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187802 Malicious code in lint-antares-luna-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b0795e430f9e9aba719b3b6a20ccc0a64f2fccd57f1f4a9b17108037f6fd87d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188809 Malicious code in prettier-registry-forever-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c9bee273ba762279ba30203b2a54d467cc3b01e489006d55110b49d433736a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187584 Malicious code in janus-rocket-crust-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57d68df4dd0ef3941fc01f5427a525386ddef1adb2f0de27c41bda77a6971c9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187608 Malicious code in jest-titan-postcss-loader-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a277d7a2ceb2b1f9af71797414949b7377311b1cbeadc87adacedba54221430 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188530 Malicious code in paleomagnetism-process-rigel-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 806c222b404c6835419bb2dc3e3292a0bfea544dc0e55b7579ef348d91329803 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188847 Malicious code in procyon-planckscale-steganography-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39c4d37fbf13255886e12089e56f22b61d91b3bdf0777757e8525a23c2d66b5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185868 Malicious code in blueshift-toml-bellatrix-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba781ce6e21bc8fd259330532a0851175ac241caef9ae72c818ba96369dc9688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188134 Malicious code in mu-slow-star-promise-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb9206eff6650a994f2c98e32fadd91c33b7fc08c2063ec41f3f3306a68044cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187300 Malicious code in heka-antares-vulcan-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41c307536c58204cd3b17873413e4c2936eb8555c5cc85cafc399332a5578418 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187481 Malicious code in init-venus-sync-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41b6e40d812a9363fa5f719d89f8033b005cc387fbeadb50dac11ca6fcd9ba44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in deserialize-rain-stub-alpha-socket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fe3e3ccc671a2079a03fbc27a83e769b85746d020ff909b6623c07efafa20d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185948 Malicious code in bunyan-radioastronomy-interstellarmedium-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cc54e68d097377490b89849ea3a8203a0b8b2af36ff8e9b2ab0361325f59df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188089 Malicious code in mocha-neptunology-flare-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6d37bf0614ce1300b08987292992ee91266002a191b2baf94fb221bc877a9b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189894 Malicious code in testcafe-chalk-magellan-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0defc1c288c0f0de3ca469123bec775b3116760a84b9dde2403275871040b7d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190204 Malicious code in vulcan-astrobiology-wavefunction-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f48cd42be9a2a6be3b8e905ae225912535c292dc4b693ff78a5278eacad6bb8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186723 Malicious code in emulate-private-alpha-decompress-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a73cd7def8995cb1c4f464021cd52d52ea06de08bba825ef6747549710d415d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...